Privacy-First Architecture: IrisMapper Pro is designed with privacy at its core. Patient health information (names, images, clinical notes) is stored locally in your browser and encrypted with AES-256-GCM. This data never leaves your device unless you explicitly export it.
1. Information We Collect
1.1 Account Information
When you create an account, we collect and store in Firebase Firestore:
- Email address
- Account creation date
- Subscription status and plan type
- Team ID (for Clinic plan users)
1.2 Patient Data (Stored Locally)
The following data is stored in your browser's IndexedDB with AES-256-GCM encryption and never transmitted to our servers:
- Patient names and identifiers
- Iris photographs
- Clinical notes and observations
- Image adjustment settings
- Project files and exports
1.3 Usage Analytics
We collect basic usage analytics to improve our service:
- Pages visited and features used
- Browser type and device information
- Geographic location (country-level only via IP address)
- Session duration and interaction patterns
2. How We Use Your Information
2.1 Account Data
Your email and subscription information stored in Firebase is used to:
- Authenticate your account access
- Process subscription payments via Stripe
- Send service-related notifications (subscription reminders, billing updates)
- Provide customer support
2.2 Patient Data
Your patient data stored in browser IndexedDB is:
- Never uploaded to our servers
- Never shared with third parties
- Accessible only from your browser on your device
- Your responsibility to backup and secure
2.3 Analytics
Usage analytics help us:
- Understand which features are most valuable
- Identify and fix bugs
- Improve platform performance
- Plan future development
3. Third-Party Services
3.1 Firebase (Google)
We use Firebase for user authentication and account management. Firebase stores your email, subscription status, and account metadata. Firebase complies with GDPR and provides industry-standard security.
3.2 Stripe
Payment processing is handled by Stripe. When you subscribe, Stripe collects:
- Payment card information
- Billing address
- Email address
We never store your complete payment card details. Stripe is PCI DSS Level 1 certified.
3.3 Brevo (formerly Sendinblue)
We use Brevo for contact form submissions. When you submit the contact form, Brevo receives:
- Your name and email address
- Message content
- Timestamp of submission
4. Data Storage and Security
4.1 Encryption
- Patient Data: Encrypted with AES-256-GCM before storage in browser IndexedDB
- Data in Transit: All communications use HTTPS with TLS 1.3
- Account Data: Stored in Firebase with industry-standard security
4.2 Data Persistence
Important: Patient data stored in your browser's IndexedDB may be lost if you:
- Clear browser cache or site data
- Uninstall your browser
- Use browser privacy modes (Incognito/Private)
- Switch to a different device or browser
We strongly recommend regularly exporting and backing up important patient data externally.
5. Cookies and Tracking
We use cookies and local storage for:
- Authentication: Maintaining your login session (Firebase)
- Preferences: Remembering your settings and layout choices
- Analytics: Understanding usage patterns (anonymized)
You can disable cookies in your browser settings, but this may affect platform functionality.
6. Your Data Rights (GDPR)
Under GDPR, you have the right to:
- Access: Request a copy of your account data stored in Firebase
- Rectification: Correct inaccurate account information
- Erasure: Delete your account and associated data
- Portability: Export your account data in machine-readable format
- Objection: Opt out of analytics tracking
To exercise these rights, contact us through the contact form or email support.
6.1 Data Deletion
To delete your account:
- Log in to your account
- Go to Account Dashboard
- Click "Delete Account" and confirm
This will delete your email, subscription data, and authentication credentials from Firebase. Patient data stored in your browser must be cleared manually by clearing browser data.
7. Data Retention
- Account Data: Retained while your subscription is active, plus 90 days after cancellation
- Billing Records: Retained by Stripe for 7 years (legal requirement)
- Analytics: Aggregated analytics retained indefinitely (anonymized)
- Patient Data: Stored in your browser indefinitely until you clear it
8. International Data Transfers
Your account data stored in Firebase may be processed in countries outside the European Economic Area (EEA). Firebase complies with GDPR and uses Standard Contractual Clauses (SCCs) for data transfers.
9. Children's Privacy
IrisMapper Pro is intended for healthcare practitioners and not directed at individuals under 18. We do not knowingly collect personal information from children.
10. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with an updated "Last updated" date. Continued use of IrisMapper Pro after changes constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or our data practices:
- Use the contact form on our homepage
- Email us through your account dashboard
- See our Compliance page for technical details
12. Compliance Summary
GDPR Compliance: Yes
Account data processing complies with GDPR. Data subject rights are honored.
HIPAA Compliance: No
IrisMapper Pro is not HIPAA compliant. Patient Health Information (PHI) is stored in browser IndexedDB, not in a HIPAA-compliant server environment. See Compliance page for details and recommendations.